The purpose of this role is to improve and maintain in an effective manner the Information Security management framework to ensure that CUSTOMER business, information and system assets are adequately protected with the full respect of the existing policies, standards and regulation.
The role will strongly contribute to delivering security technologies and key project milestones related to the ACPR observations from the inspection held in 2021.

Responsibilities / Activities include:
Deliver information system security related projects as defined in the ACPR remediation plans.
Implement Security Projects that enable CUSTOMER to conduct business in a secure manner, and responsibility for developing and monitoring practices to ensure that the CUSTOMER’s information assets are secure from Denial of Service risks, Insider Breach/internal Events, External Breaches, Supply Chain Security, and Security Breach/Event.
Work with business teams to ensure that information security policies and standards are integrated with business processes. Constructively challenging existing processes where necessary.
Monitor and challenge the CUSTOMER vendor, outsourcer companies on all the information security topics.
Contribute to all information security related documentation needed by the CUSTOMER departments.
Collaborate with the second Line of defense teams in order to provide the appropriate reports.
Experience, Knowledge and Skills
Ideally 7-15 years of experience.
IT background (Operating System, Databases, Script languages, Network etc.).
Strong security background (firewalling, PAM, IAM, EDR etc.).
Strong capabilities in terms of project management.
Knowledge of information security management frameworks, such as ISO/IEC 2700x, and NIST.
Proven performance in problem solving, collaboration and priority setting.
Interpersonal skills: effective listening, patience and composure.
Professional security management certification would be a plus (CISSP etc.).
English is required.
Experience managing assurance reviews / controls / audit related to Cyber Security activities.
Ability to build solid relationships with stakeholders.